$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: kJb+d3jFWquFynkWSGnY7UVNWfIGZEnwGoZdWI+CDb8= Subject key identifier: B7:CD:8A:80:00:38:43:AD:DA:F2:64:AC:77:11:EE:63:C3:FE:C1:09 Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: 014B Signing time: Tue 17 Jun 2025 03:19:36 +0000 Manifest this update: Tue 17 Jun 2025 03:19:35 +0000 Manifest next update: Tue 24 Jun 2025 03:19:35 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: SH0dFB/FZRgwKMIAq42qJ/1CQmEZYKzi3WcY52NVMkk=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: S579X7Eg58aEG3SPKUs0UURwjN76vzCVTAQS2DSPcNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Jun 17 03:19:35 2025 GMT Not After : Jun 24 03:19:35 2025 GMT Subject: CN=6850dec7-8b32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f3:a7:99:a0:10:30:07:d1:5b:8a:e7:94:65: 19:89:a6:bc:93:dc:a4:a6:97:92:03:4c:d8:e9:09: b9:96:e5:d7:22:60:30:67:dd:af:ba:82:61:19:c2: ec:a4:4c:1e:40:ea:e8:07:95:28:a9:40:ef:8c:de: ab:49:c8:bd:b5:af:fe:c8:0b:06:b0:c4:df:db:3c: e3:99:4e:7b:3e:8e:2e:ed:e2:82:94:a1:50:c0:d7: 37:ad:0b:97:8b:36:8a:19:a5:dc:76:b7:63:f9:dc: 26:a7:d0:dd:a6:fb:79:bc:18:a8:92:66:6c:33:cc: 2d:2a:ca:5e:36:d0:1f:8f:ef:49:9a:24:a6:11:80: 95:a8:2d:e5:b2:b1:9a:3c:bb:33:c3:7e:6f:4c:b5: ba:c5:bb:0e:ed:7c:8b:21:79:d3:1d:50:28:a4:d3: 87:d0:34:7f:04:a4:3e:1f:80:09:04:a4:fc:a9:94: a5:8c:a7:6f:3a:81:fa:bf:fa:c0:e7:9d:e6:13:90: b0:65:98:3a:f0:50:5a:4b:ed:84:a1:2b:da:69:fc: 59:1a:41:de:81:60:6d:5b:2b:df:1b:cd:6f:18:5a: 0e:76:ec:bf:f7:29:24:bc:b0:65:a8:dc:18:53:2b: b1:3f:da:59:2e:2b:39:1e:fa:ef:b9:7d:58:4b:aa: 63:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CD:8A:80:00:38:43:AD:DA:F2:64:AC:77:11:EE:63:C3:FE:C1:09 X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:c1:99:55:11:a6:1d:e0:d5:0a:97:52:6b:8f:80:ac:0d:3c: c0:d5:ae:0e:b0:da:f4:83:2c:d6:75:60:ef:fe:7e:8b:f2:14: a8:38:f2:31:f4:86:05:6b:0a:2c:08:8c:38:60:1b:48:23:a6: c0:31:78:09:d0:a7:f2:3c:06:52:e4:5c:a7:e9:59:bb:f8:a0: f0:4c:7c:b7:3f:9e:c5:49:e9:a0:b8:4a:81:5e:8a:1b:32:58: e8:5f:d9:bd:eb:e3:1c:07:d6:b8:ec:28:3d:6b:e4:7d:f9:57: de:b6:a8:39:fd:f4:a1:23:81:80:24:6e:93:70:33:b8:60:d8: f3:8e:69:1a:22:4b:f1:e5:97:75:c7:aa:68:1f:63:2c:2d:94: e2:58:e2:1d:2c:3f:43:2a:f1:e6:b8:06:4c:55:b6:54:5a:83: 24:b9:8c:a3:fd:c2:27:60:b8:a2:99:86:44:d9:89:46:8b:2b: 20:88:2a:bd:6e:54:36:54:39:60:51:40:31:d9:7b:09:9e:84: 29:6d:2f:47:b0:e8:72:2b:d4:08:c6:e0:f6:d7:c1:e7:4b:13: 79:89:a1:a5:e9:a2:4f:50:33:e8:87:f8:ca:b4:1e:f9:45:87: a1:d2:4d:97:59:9c:40:95:6a:8b:2d:10:4c:c8:81:94:d9:93: 44:f4:11:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUwNjE3MDMxOTM1WhcNMjUwNjI0MDMxOTM1WjAYMRYwFAYD VQQDEw02ODUwZGVjNy04YjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fOnmaAQMAfRW4rnlGUZiaa8k9ykppeSA0zY6Qm5luXXImAwZ92vuoJhGcLs pEweQOroB5UoqUDvjN6rSci9ta/+yAsGsMTf2zzjmU57Po4u7eKClKFQwNc3rQuX izaKGaXcdrdj+dwmp9Ddpvt5vBiokmZsM8wtKspeNtAfj+9JmiSmEYCVqC3lsrGa PLszw35vTLW6xbsO7XyLIXnTHVAopNOH0DR/BKQ+H4AJBKT8qZSljKdvOoH6v/rA 553mE5CwZZg68FBaS+2EoSvaafxZGkHegWBtWyvfG81vGFoOduy/9ykkvLBlqNwY UyuxP9pZLis5HvrvuX1YS6pj5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfNioAA OEOt2vJkrHcR7mPD/sEJMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4wZlVEaYd4NUKl1Jrj4CsDTzA1a4OsNr0gyzWdWDv/n6L8hSoOPIx 9IYFawosCIw4YBtII6bAMXgJ0KfyPAZS5Fyn6Vm7+KDwTHy3P57FSemguEqBXoob MljoX9m96+McB9a47Cg9a+R9+Vfetqg5/fShI4GAJG6TcDO4YNjzjmkaIkvx5Zd1 x6poH2MsLZTiWOIdLD9DKvHmuAZMVbZUWoMkuYyj/cInYLiimYZE2YlGiysgiCq9 blQ2VDlgUUAx2XsJnoQpbS9HsOhyK9QIxuD218HnSxN5iaGl6aJPUDPoh/jKtB75 RYeh0k2XWZxAlWqLLRBMyIGU2ZNE9BHJ -----END CERTIFICATE-----Generated at Thu Jun 19 05:10:27 2025 by rpki-client